$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/75426BC6A8C511EC8F560C42C4F9AE02.roa File: 75426BC6A8C511EC8F560C42C4F9AE02.roa (raw, json) Hash identifier: 96lEWStK+SJeyg1XqxzLRitWujEScstwoVayQazju6E= Subject key identifier: FA:0D:76:C9:A4:E9:79:A8:4C:68:3A:A1:AB:F1:D8:7E:AE:0D:FA:1A Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 0337 Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/75426BC6A8C511EC8F560C42C4F9AE02.roa Signing time: Tue 03 Oct 2023 01:42:56 +0000 ROA not before: Tue 03 Oct 2023 01:42:56 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 147054 IP address blocks: 103.173.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 01:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: Oct 3 01:42:56 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651b71a0-ffe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:cb:3b:b1:c0:77:46:38:54:b9:04:24:5f: c7:f4:47:ed:f6:a9:3a:60:f0:ff:18:0a:5e:c8:9a: 52:8e:1d:8e:62:af:79:47:c2:6e:b0:2c:4b:08:86: e3:19:71:3a:9e:5b:d4:bd:d8:ca:eb:c3:e8:59:62: 77:26:b6:69:37:e2:b2:c2:0b:22:35:b1:7e:49:f1: e2:25:c8:0d:2c:3a:27:54:4e:f9:58:95:55:2e:1c: a2:70:44:00:89:d4:ce:18:70:63:24:09:80:fb:19: a5:52:81:2f:f6:e2:ab:bd:43:f0:41:4f:a9:4c:14: 7a:65:e0:07:72:5d:f5:a7:c2:9f:a6:2b:82:8e:e0: c7:80:0b:db:b7:98:f4:92:f9:b7:59:c4:40:2a:e5: b6:c9:ae:44:ea:aa:6c:97:e8:c5:29:20:20:32:bc: 10:3d:b1:90:da:f7:97:dc:4b:92:9c:fa:75:64:b2: 2d:c8:4b:68:60:d5:4c:f3:96:cc:18:51:0e:69:be: 82:1b:87:0c:0a:9d:a2:c1:d5:b0:f5:e7:5c:9b:10: bf:a4:14:dd:c3:20:a7:67:21:dd:82:2a:d9:f4:81: a8:3e:f1:81:ea:f6:a8:5f:63:36:db:92:ef:be:e6: 03:fe:89:19:db:49:66:35:28:3f:a5:70:ff:ce:f4: 68:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:0D:76:C9:A4:E9:79:A8:4C:68:3A:A1:AB:F1:D8:7E:AE:0D:FA:1A X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/75426BC6A8C511EC8F560C42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.176.0/24 Signature Algorithm: sha256WithRSAEncryption 49:f6:1a:ba:3d:a8:88:9f:0c:9c:4a:32:22:3a:a1:90:fb:c7: 9d:84:1e:d7:af:ef:30:8a:76:b5:7e:f9:1e:53:a5:0a:c1:34: f6:cb:f9:e7:e5:d4:84:02:42:03:ee:29:bf:c7:36:77:98:d3: 4c:a8:e1:47:1d:cc:be:c5:ab:14:74:1f:6f:55:eb:6f:51:b5: 43:a1:9f:3d:35:ff:1a:36:8d:3e:62:8e:8d:cb:2a:5b:97:84: 8f:3e:06:16:f4:23:6d:22:ba:22:38:70:ad:44:19:76:20:25: 4f:9b:0f:62:60:12:00:bb:2f:56:62:c4:18:d8:03:1b:c8:ff: 0d:47:b5:7a:33:ec:08:9b:70:ba:1c:c2:48:40:ae:9d:56:ec: 49:8d:ec:24:74:5b:67:69:85:52:28:20:78:a4:c7:30:bf:b7: c5:9b:e5:82:e5:13:e4:d0:a7:20:20:2a:f9:d2:26:25:b1:eb: 92:77:d9:90:1f:6a:3d:68:14:53:c0:3f:64:bc:9b:e6:53:a1: f7:e1:b1:e3:5f:ac:b0:ce:da:38:74:12:5d:b0:b5:59:cf:bc: a0:8d:24:4c:a4:c1:70:51:9c:b5:67:8f:5b:ff:50:9d:47:44: 64:88:22:e9:f4:1e:5f:a1:c4:65:46:8d:d8:6a:78:63:94:d0: 8d:bd:9c:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjMxMDAzMDE0MjU2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiNzFhMC1mZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2LLO7HAd0Y4VLkEJF/H9Eft9qk6YPD/GApeyJpSjh2OYq95R8JusCxLCIbj GXE6nlvUvdjK68PoWWJ3JrZpN+KywgsiNbF+SfHiJcgNLDonVE75WJVVLhyicEQA idTOGHBjJAmA+xmlUoEv9uKrvUPwQU+pTBR6ZeAHcl31p8KfpiuCjuDHgAvbt5j0 kvm3WcRAKuW2ya5E6qpsl+jFKSAgMrwQPbGQ2veX3EuSnPp1ZLItyEtoYNVM85bM GFEOab6CG4cMCp2iwdWw9edcmxC/pBTdwyCnZyHdgirZ9IGoPvGB6vaoX2M225Lv vuYD/okZ20lmNSg/pXD/zvRo/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPoNdsmk 6XmoTGg6oavx2H6uDfoaMB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNGRkYvODJBRDM3N0E0REFCMTFFQzkyMTRGNTIxQzRGOUFFMDIvNzU0MjZCQzZB OEM1MTFFQzhGNTYwQzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrbAwDQYJKoZIhvcNAQELBQADggEBAEn2Gro9qIifDJxK MiI6oZD7x52EHtev7zCKdrV++R5TpQrBNPbL+efl1IQCQgPuKb/HNneY00yo4Ucd zL7FqxR0H29V629RtUOhnz01/xo2jT5ijo3LKluXhI8+Bhb0I20iuiI4cK1EGXYg JU+bD2JgEgC7L1ZixBjYAxvI/w1HtXoz7AibcLocwkhArp1W7EmN7CR0W2dphVIo IHikxzC/t8Wb5YLlE+TQpyAgKvnSJiWx65J32ZAfaj1oFFPAP2S8m+ZToffhseNf rLDO2jh0El2wtVnPvKCNJEykwXBRnLVnj1v/UJ1HRGSIIun0Hl+hxGVGjdhqeGOU 0I29nI8= -----END CERTIFICATE-----Generated at Wed May 15 03:08:25 2024 by rpki-client on console-ams.rpki-client.org